CVE-2021-1093
5.5
MEDIUM
CVSS 3.1
EPSS 0.08%
Description
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in firmware where the driver contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary, and may lead to denial of service or system crash.
How to fix CVE-2021-1093
To remediate CVE-2021-1093, upgrade the affected package to a fixed version below.
- —upgrade to 460.91.03-1 or later
- —upgrade to 390.144-1 or later
- —upgrade to 418.211.00-1 or later
- —upgrade to 450.142.00-1 or later
- —upgrade to 460.91.03-1 or later
Is CVE-2021-1093 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (5)
- from 0, < 460.91.03-1
- from 0, < 390.144-1
- from 0, < 418.211.00-1
- from 0, < 450.142.00-1
- from 0, < 460.91.03-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.5 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |